douan3182 2009-07-22 22:44
浏览 18
已采纳

我的Zend框架'引用'混乱

I've got a probably very simple issue to which I can't find a satisfactory (subjectively seen) answer in the Zend Framework manual or elsewhere...

There are so many ways how I can hand over my php variables to my sql queries that I lost the overview and probably I lack some understanding about quoting in general.

Prepared Statements

$sql =  "SELECT this, that
        FROM table
        WHERE id = ? AND restriction = ?";

$stmt = $this->_db->query($sql, array($myId, $myValue)); 
$result = $stmt->fetchAll();

I understand that with this solution I don't need to quote anything because the db handles this for me.

Querying Zend_Db_Table and _Row objects over the API

$users = new Users();

a) $users->fetchRow('userID = ' . $userID);  
b) $users->fetchRow('userID = ' . $users->getAdapter()->quote($userID, 'INTEGER'));  
c) $users->fetchRow('userID = ?', $userID);  
d) $users->fetchRow('userID = ?', $users->getAdapter()->quote($userID, 'INTEGER'));

Questions

I understand that a) is not ok because it's not quoted at all. But what about the other versions, what's the best? Is c) being treated like a statement and automatically quoted or do I need to use d) when I use the ? identifier?

  • 写回答

2条回答 默认 最新

  • duanjia4969 2009-07-23 02:13
    关注

    Disclaimer: This information is valid as of the original posting date of this answer. ZF changes often, this information may become outdated with future releases, however, this will remain unchanged for archival purposes.

    If you pass a string to the fetchRow() method of a subclass of Zend_Db_Table_Abstract (which you are doing), it will be treated as a where part of a Zend_Db_Table_Select instance.

    In other words, internally, Zend_Db_Table does this:

    if (!($where instanceof Zend_Db_Table_Select)) {
    $select = $this->select();

    if ($where !== null) {
        $this->_where($select, $where);
    }

    So...:

    a) $users->fetchRow('userID = ' . $userID);

    Is not quoted at all.

    b) $users->fetchRow('userID = ' . $users->getAdapter()->quote($userID, 'INTEGER'));

    Is manually quoted as an integer.

    c) $users->fetchRow('userID = ?', $userID);

    Is automatically quoted by Zend_Db_Adapter_*::quoteInto()

    d) $users->fetchRow('userID = ?', $users->getAdapter()->quote($userID, 'INTEGER'));

    Is actually double quoted, once by you, and once via the automatic quoting.

    As far as "best" is concerned, I would recommend option C. The framework will automatically call quoteInto on the parameterized value.

    Keep in mind: You could always pass an instance of Zend_Db_Table_Select or Zend_Db_Select to the fetchRow() method instead...

    Again, in a subclass of Zend_Db_Table_Abstract, that would look like this:

    $this->fetchRow($this->select()->where('userID = ?', $userID));

    The plus of doing this, is that you can construct much more complex queries, as you have control over much, much more than just the WHERE clause of the SQL query. In theory, you could easily do:

    $select = $this->select()->where('userID = ?', $userID)
                         ->join(array('sat' => 'superAwesomeTable'), array('sat.user_id = userID', array('superAwesomeColumn'));

$this->fetchRow($select);

    Note: If passed an instance of Zend_Db_Select, the fetchRow() method acts exactly like fetchAll() except it internally calls the limit() method of the select object, with a parameter of 1.

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论
查看更多回答(1条)

报告相同问题?

  • 我的Zend框架'引用'混乱 php sql
    2009-07-22 22:44
    回答 2 已采纳 Disclaimer: This information is valid as of the original posting date of this answer. ZF changes o
  • Zend框架2用常量加载php文件 php
    2016-01-08 10:10
    回答 1 已采纳 To define the contants when the module CMS loads use the Module::onBootstrap() method. class Modu
  • php mysql Zend框架中搜索多个值和多个字段 mysql php
    2018-08-03 11:31
    回答 1 已采纳 Try to use SELECT IN(value1,value2,...)
  • PHP 常用框架
    2022-10-11 10:57
    云三木的博客 小型项目:CodeIngiter中型项目:CakePHPZend Framework、Laravel、Thinkphp大型重量级项目:Yii、Symfony、Laravel以上划分也不绝对,在项目选型的时候,要充分考虑框架的可以定制性、扩展性,因为每个项目都无法...
  • zend框架docker-compose stop php
    2018-04-17 21:55
    回答 1 已采纳 If you haven't changed anything in the [project folder]/Dockerfile and docker-compose.yml file: Y
  • Zend框架记住我 - 工作问题 php
    2012-03-12 11:12
    回答 6 已采纳 Extending the session's expiration time for more than a few hours is a bad idea for many reasons,
  • Zend框架模块设置 php
    2016-06-08 20:41
    回答 1 已采纳 All I had to do was change the route in module.config.php to /blindqc/summary and rename view/blin
  • php框架总结,PHP主流框架优缺点汇总
    2021-04-09 10:54
    FairyTail94390的博客 PHP主流框架包括:CodeIgniter、Lavarel、ThinkPHP、CakePHP、Yii、ZendFramework等,下面我们来了解一下这些框架的优缺点。CodeIgniter优点:1.配置简单,全部的配置使用PHP脚本来配置,执行效率高;具有基本的路由...
  • 使用zend框架组件创建wordpress插件 php
    2017-04-15 10:42
    回答 1 已采纳 you can take help of composer here. import zf2 library thorough composer and use it in your plugi
  • 如何在zend框架中将多个图像上传到数据库中 php
    2019-05-01 09:54
    回答 1 已采纳 As i understand your code you have to first upload image and then you have to make comma separated
  • JSON登录认证Zend框架 json php
    2017-02-23 03:44
    回答 1 已采纳 Backend problem You are outputting invalid JSON. PHP provides json_encode to save you having to
  • 高性能php开发框架,PHP高性能框架选择
    2021-03-23 11:19
    接近无线透明的灰的博客 在不用缓存、集群之类东东只情况下,PHP框架哪家强?我指的是高并发高负载,并且适合做大型项目的。高负载不是一个语言的问题,这个讨论的范围已经超出了PHP:1、如果同一类型的的框架(指都是为了解决某类问题,比如...
  • Zend框架卷曲 - 调试GET php
    2016-02-25 22:47
    回答 1 已采纳 Add: 'curloptions' => array( CURLOPT_FOLLOWLOCATION => true, CURLOPT_VERBOSE =>
  • php框架 安装原理,PHP框架原理_PHP教程
    2021-04-28 08:56
    乔治·华尔特的博客 本文主要来聊聊框架理论,但不针对任何一款框架,不过任何一款框架都离不开这个理论,首先我们了解下框架的来龙去脉,任何技术的出现都是为了解决某个问题,之前的博客有讲过smarty,其存在就是为了html和php更好地...
  • php 各种框架优缺点
    2020-12-30 06:36
    写回的博客 一直以来,phper讨论最多的就是php各种框架的优缺点,网上的资料也是比较零散,现把几款主流的框架收集汇总一下,其中本人只是用过Yii2、Laravel、Yaf、Thinkphp这四种框架,因此大部分对各种框架的评价皆来自与网上...
  • php主流框架优缺点及应用场景
    2021-03-22 18:18
    蹲在角落数蚂蚁的博客 Yii采用严格的OOP编写,并有着完善的库引用以及全面的教程。从 MVC,DAO/ActiveRecord,widgets,caching,等级式RBAC,Web服务,到主题化,I18N和L10N,Yii提供了 今日Web 2.0应用开发所需要的几乎一切功能。事实上...
  • 高性能PHP框架Smpe.zip
    2019-07-19 07:50
     Smpe并不打算把所有功能都包括进来, 但基于Smpe的项目结构可以很轻松地包括其他任何库或框架(例如Zend,PHPExcel等). 功能特点:  简单, 易用, 高性能;  适合中大型项目, 利于项目长期维护并保持...
  • php界面框架luy_php常用的7大框架
    2020-12-21 04:53
    weixin_39995297的博客 一、ThinkPHPThinkPHP(FCS)是一个轻量级的中型框架,是从Java的Struts结构移植过来的中文PHP开发框架。它使用面向对象的开发结构和MVC模式,并且模拟实现了Struts的标签库,各方面都比较人性化,熟悉J2EE的开发人员...
  • php开发框架有那些,php开发常用框架有哪几个
    2021-03-17 14:55
    weixin_39937447的博客 php开发常用框架介绍:(视频教程推荐:php视频教程)一、ThinkPHPThinkPHP(FCS)是一个轻量级的中型框架,是从Java的Struts结构移植过来的中文PHP开发框架。它使用面向对象的开发结构和MVC模式,并且模拟实现了Struts...
  • Smpe - 高性能的PHP应用框架
    2015-01-20 12:25
    Smpe - 开发者友好的MVC框架. 这里对友好的理解是: 少写重复代码, 降低混乱发生的机会. ...Smpe并不打算把所有功能都包括进来, 但基于Smpe的项目结构可以很轻松地包括其他任何库或框架(例如Zend,PHPExcel等).
  • 没有解决我的问题, 去提问

悬赏问题

  • ¥15 有了解d3和topogram.js库的吗?有偿请教
  • ¥100 任意维数的K均值聚类
  • ¥15 stamps做sbas-insar,时序沉降图怎么画
  • ¥15 unity第一人称射击小游戏,有demo,在原脚本的基础上进行修改以达到要求
  • ¥15 买了个传感器,根据商家发的代码和步骤使用但是代码报错了不会改,有没有人可以看看
  • ¥15 关于#Java#的问题,如何解决?
  • ¥15 加热介质是液体,换热器壳侧导热系数和总的导热系数怎么算
  • ¥100 嵌入式系统基于PIC16F882和热敏电阻的数字温度计
  • ¥15 cmd cl 0x000007b
  • ¥20 BAPI_PR_CHANGE how to add account assignment information for service line